Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,414 advisories

Loading
The Spotify app 8.9.58 for iOS has a buffer overflow in its use of strcat. High Unreviewed
CVE-2024-42011 was published Oct 28, 2024
A vulnerability classified as critical has been found in SourceCodester Payroll Management System... Moderate Unreviewed
CVE-2024-10371 was published Oct 25, 2024
A segmentation fault (SEGV) was detected in the Assimp::SplitLargeMeshesProcess_Triangle:... Moderate Unreviewed
CVE-2024-48425 was published Oct 24, 2024
A heap-buffer-overflow vulnerability has been identified in the OpenDDLParser::parseStructure... Moderate Unreviewed
CVE-2024-48424 was published Oct 24, 2024
A segmentation fault (SEGV) was detected in the SortByPTypeProcess::Execute function in the... Moderate Unreviewed
CVE-2024-48426 was published Oct 24, 2024
HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681. Critical Unreviewed
CVE-2024-46478 was published Oct 24, 2024
Buffer Overflow in coap_msg.c in FreeCoAP allows remote attackers to execute arbitrary code or... Critical Unreviewed
CVE-2024-40494 was published Oct 23, 2024
Incorrect Access Control in GStreamer RTSP server 1.25.0 in gst-rtsp-server/rtsp-media.c allows... High Unreviewed
CVE-2024-44331 was published Oct 23, 2024
A Buffer Overflow vulnerabilty in the local_app_set_router_token function of Vilo 5 Mesh WiFi... Critical Unreviewed
CVE-2024-40083 was published Oct 21, 2024
A Buffer Overflow in the Boa webserver of Vilo 5 Mesh WiFi System <= 5.16.1.33 allows remote,... Critical Unreviewed
CVE-2024-40084 was published Oct 21, 2024
A Buffer Overflow vulnerability in the local_app_set_router_wifi_SSID_PWD function of Vilo 5 Mesh... Critical Unreviewed
CVE-2024-40086 was published Oct 21, 2024
A Buffer Overflow vulnerability in the local_app_set_router_wan function of Vilo 5 Mesh WiFi... Critical Unreviewed
CVE-2024-40085 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix buffer... High Unreviewed
CVE-2022-49023 was published Oct 21, 2024
Buffer Overflow vulnerability in IrfanView 32bit v.4.66 allows a local attacker to cause a denial... Moderate Unreviewed
CVE-2024-31007 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Prevent... High Unreviewed
CVE-2022-48948 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix buffer overflow... High Unreviewed
CVE-2024-49996 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: send: fix buffer... High Unreviewed
CVE-2024-49869 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer... High Unreviewed
CVE-2024-47751 was published Oct 21, 2024
Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to obtain sensitive... High Unreviewed
CVE-2024-33453 was published Oct 18, 2024
In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name... Moderate Unreviewed
CVE-2024-48710 was published Oct 15, 2024
In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name... Moderate Unreviewed
CVE-2024-48713 was published Oct 15, 2024
In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without... Moderate Unreviewed
CVE-2024-48712 was published Oct 15, 2024
In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string name... Moderate Unreviewed
CVE-2024-48714 was published Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component:... High Unreviewed
CVE-2024-21274 was published Oct 15, 2024
D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the sub_451208 function. Critical Unreviewed
CVE-2024-48150 was published Oct 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database